secret config, rm run script

.gitignore

-db/

app.moon

 import api, abort, assert_model from require "helpers"
 
 class extends lapis.Application
+  [console: "/console/#{config.secret}"]: =>
+    if Users\count! < 1 or @session.id == 1
+      return console.make(env: "all")(@)
+    else
+      return status: 401, "401 - Unauthorized"
+
   [authenticate: "/0/auth"]: api {
     POST: =>
       -- find user by name or id if specified
 
       return name: user.name, id: user.id
   }
+
   [name: "/0/:id[%d]"]: api {
     GET: =>
       if user = Users\find id: @params.id

config.moon

 config = require "lapis.config"
 
 postgres_password = os.getenv "POSTGRES_PASSWORD"
+secret_value = os.getenv "SESSION_SECRET"
 
 config "development", ->
   postgres ->
     password postgres_password
   num_workers 2
   code_cache "on"
+  secret secret_value or "insecure"
 
   digest_rounds 12

run

-#!/usr/bin/env bash
-docker stop passwd0
-docker rm passwd0
-docker stop passwd-db
-docker rm passwd-db
-docker network create web
-docker network create passwd-db
-
-docker build -t passwd0 .
-docker run -d --restart always --name passwd-db --network passwd-db \
-  -v "$PWD/db":/var/lib/postgresql/data postgres:10.5-alpine
-sleep 5   # give Postgres time to start
-docker run -d --restart always --name passwd0 --network passwd-db \
-  passwd0:latest
-docker network connect web passwd0